Q41 — AWS DVA-C02 Ch.1

Question 41 of 100 | ← Chapter 1

A company is developing a serverless application using AWS Lambda functions. One of the Lambda functions needs to access an Amazon RDS database instance. The database instance resides in a private subnet within a VPC. The company created an IAM role with permissions to access the database instance and attached that role to the Lambda function. Developers must take additional steps to enable the Lambda function to access the database instance. To meet these requirements, what should the developers do?

Correct Answer: D. Configure the Lambda function to connect to a private subnet in the VPC. Add security group rules to allow traffic from the Lambda function to the database instance.

Explanation

Developers should configure the Lambda function to connect to a private subnet in the VPC and add security group rules to allow traffic from the Lambda function to the database instance. Because the database instance resides in a private subnet, the Lambda function must be placed inside the VPC to access it. Therefore, the Lambda function must be configured to connect to the VPC, and security group rules must permit traffic from the Lambda function to the database instance. 【Lantern Certification provided by: swufelp1999】